CVE-2016-2791

The graphite2::GlyphCache::glyph function in Graphite 2 before 1.3.6, asused in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7,allows remote attackers to cause a denial of service (buffer over-read) orpossibly have unspecified other impact via a crafted Graphite smart font.